Changing passwords in XL Release

Change the encryption key password

Passwords in the XL Release repository are encrypted with a secret key. This password encryption key is stored in a keystore file called XL_RELEASE_SERVER_HOME/conf/repository-keystore.jceks, which is optionally protected with a password. If a password is set, you must enter it when the XL Release Server starts.

Note:repository-keystore.jceks is one of the two keystore concepts in XL Release. This keystore only contains the key used for encryption of passwords in the repository. If you use HTTPS, XL Release will use a second keystore file to store the (self-signed) certificate.

To change the keystore password, use the keytool utility that is part of the Java JDK distribution:

Replace CURRENT_PASSWORD with the admin user’s current password, replace IP and PORT with the IP address and port number where your XL Release server is running, and replace /tmp/user.xml with the path to the XML file.

Stop the XL Release server.

Open XL_RELEASE_SERVER_HOME/conf/xl-release-server.conf and add the new admin password as follows:

admin.password=NEW_PASSWORD

Save the file.

Start the XL Release server. This registers and encrypts the new password.

Reset the admin user’s password

If you have forgotten the password for the built-in admin user and you do not have the password for another user with the Admin global permission, then you cannot authenticate with the XL Release server to change the admin password. It is strongly recommended that you create at least one additional user with the Admin permission to prevent this situation.

Prior to XL Release 6.0.0, you can install a hotfix to disable password checks and then use the REST API to set a new password for the admin user. Note that:

This procedure is not supported for XL Release 6.0.0 and later.

You must back up your XL Release instance before resetting the password.